CyberSecurityBoard
Sponsor Register Login

Symantec Endpoint Management Suite Vulnerability Allows Malicious Code Execution Remotely

The flaw, designated CVE-2025-5333 with a severe CVSS v4.0 score of 9.5, affects multiple versions of the widely-deployed endpoint management solution and has prompted immediate mitigation recommendations from security experts. CVE-2025-5333 (CVSS 9.5) affects Symantec Endpoint Management Suite 8.6.x-8.8, enabling unauthenticated remote code execution via port 4011. Primary mitigation involves ensuring firewalls block port 4011 on Notification Servers, effectively preventing remote exploitation. LRQA security researchers discovered the vulnerability during a Red Team assessment after identifying exposed processes on a hardened endpoint. Block port 4011 on firewalls - this port is unnecessary for normal Symantec operations according to Broadcom documentation. This allows attackers to craft malicious .NET objects that trigger arbitrary code execution when processed by the target server. Insecure .NET object deserialization in Altiris IRM component allows attackers to execute arbitrary code through crafted payloads.

This Cyber News was published on cybersecuritynews.com. Publication date: Tue, 15 Jul 2025 07:45:18 +0000


Cyber News related to Symantec Endpoint Management Suite Vulnerability Allows Malicious Code Execution Remotely

20 Best Endpoint Management Tools - 2025 - What is Good?What Could Be Better?Comprehensive endpoint security against many threats.The user interface may overwhelm some users.Machine learning for real-time threat detection.Integration with existing systems may be complex.A central management ...
4 months ago Cybersecuritynews.com
CVE-2009-1431 - XFR.EXE in the Intel File Transfer service in the console in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) ...
5 years ago
Unified Endpoint Management: What is it and What's New? - What began as Mobile Device Management has now transitioned through Mobile Application Management and Enterprise Mobility Management to culminate in UEM. This progression underscores the industry's response to the ever-growing challenges of modern IT ...
1 year ago Securityboulevard.com
25 Best Managed Security Service Providers (MSSP) - 2025 - Pros & Cons: ProsConsStrong threat intelligence & expert SOCs.High pricing for SMBs.24/7 monitoring & rapid incident response.Complex UI and steep learning curve.Flexible, scalable, hybrid deployments.Limited visibility into endpoint ...
1 month ago Cybersecuritynews.com
10 Best EDR Tools ( Endpoint Detection & Response) - 2025 - What is good?What Could Be Better ?Provides comprehensive endpoint monitoring.Some users might find the installation and configuration process of the solution tedious.Protect your entire security stack with in-depth threat intelligence.Some users ...
4 months ago Cybersecuritynews.com
CVE-2016-5310 - The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows before 12.1.6 ...
3 years ago
CVE-2016-5309 - The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows before 12.1.6 ...
3 years ago
CVE-2016-2209 - Buffer overflow in Dec2SS.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 ...
3 years ago
CVE-2016-2211 - The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint ...
3 years ago
CVE-2016-2207 - The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint ...
3 years ago
CVE-2016-2210 - Buffer overflow in Dec2LHA.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 ...
3 years ago
CVE-2016-3646 - The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint ...
5 years ago
CVE-2016-3644 - The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint ...
5 years ago
CVE-2016-3645 - Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before ...
5 years ago
20 Best Inventory Management Tools in 2025 - inFlow Inventory is a comprehensive inventory management tool designed for small to medium-sized businesses, offering features like real-time stock tracking, order management, and barcode scanning to streamline operations. The tool provides advanced ...
1 week ago Cybersecuritynews.com
The Power of Endpoint Telemetry in Cybersecurity - Cisco - By filtering out unwanted data, this telemetry reduces noise and offers clear visibility into endpoint activities, including processes, parent-child process relationships, triggered events, files and network activity, whether malicious or benign. ...
10 months ago Feedpress.me
Future-Proofing Cybersecurity: A Deep Dive into WithSecure's Innovative Mid-Market Security Solutions - Catering to over 100,000 corporate customers through a network of more than 7,000 partners, WithSecure has honed its focus on corporate security, a strategic shift from its previous broader scope that included consumer security under the F-Secure ...
1 year ago Cybersecurity-insiders.com
Future-Proofing Cybersecurity: A Deep Dive into WithSecure's Innovative Mid-Market Security Solutions - Catering to over 100,000 corporate customers through a network of more than 7,000 partners, WithSecure has honed its focus on corporate security, a strategic shift from its previous broader scope that included consumer security under the F-Secure ...
1 year ago Cybersecurity-insiders.com
Future-Proofing Cybersecurity: A Deep Dive into WithSecure's Innovative Mid-Market Security Solutions - Catering to over 100,000 corporate customers through a network of more than 7,000 partners, WithSecure has honed its focus on corporate security, a strategic shift from its previous broader scope that included consumer security under the F-Secure ...
1 year ago Cybersecurity-insiders.com
Future-Proofing Cybersecurity: A Deep Dive into WithSecure's Innovative Mid-Market Security Solutions - Catering to over 100,000 corporate customers through a network of more than 7,000 partners, WithSecure has honed its focus on corporate security, a strategic shift from its previous broader scope that included consumer security under the F-Secure ...
1 year ago Cybersecurity-insiders.com
Future-Proofing Cybersecurity: A Deep Dive into WithSecure's Innovative Mid-Market Security Solutions - Catering to over 100,000 corporate customers through a network of more than 7,000 partners, WithSecure has honed its focus on corporate security, a strategic shift from its previous broader scope that included consumer security under the F-Secure ...
1 year ago Cybersecurity-insiders.com
Future-Proofing Cybersecurity: A Deep Dive into WithSecure's Innovative Mid-Market Security Solutions - Catering to over 100,000 corporate customers through a network of more than 7,000 partners, WithSecure has honed its focus on corporate security, a strategic shift from its previous broader scope that included consumer security under the F-Secure ...
1 year ago Cybersecurity-insiders.com
Future-Proofing Cybersecurity: A Deep Dive into WithSecure's Innovative Mid-Market Security Solutions - Catering to over 100,000 corporate customers through a network of more than 7,000 partners, WithSecure has honed its focus on corporate security, a strategic shift from its previous broader scope that included consumer security under the F-Secure ...
1 year ago Cybersecurity-insiders.com
Future-Proofing Cybersecurity: A Deep Dive into WithSecure's Innovative Mid-Market Security Solutions - Catering to over 100,000 corporate customers through a network of more than 7,000 partners, WithSecure has honed its focus on corporate security, a strategic shift from its previous broader scope that included consumer security under the F-Secure ...
1 year ago Cybersecurity-insiders.com
Future-Proofing Cybersecurity: A Deep Dive into WithSecure's Innovative Mid-Market Security Solutions - Catering to over 100,000 corporate customers through a network of more than 7,000 partners, WithSecure has honed its focus on corporate security, a strategic shift from its previous broader scope that included consumer security under the F-Secure ...
1 year ago Cybersecurity-insiders.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)